cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
346
Views
0
Helpful
2
Replies

Client VPN in ASA5505

Latchum Naidu
VIP Alumni
VIP Alumni

Hi All,

We have a 5505 ASA at Rome and configured client vpn in that (authentication from Radius from DC)
Rome and DC are connected with P2P link. And Rome have seperate Internet connection which is terminated on ASA.

I am having probelms of authentication when this P2P link is down as Radius server is in DC.

Now I want able to connect client VPN even the Radius server is not reachable.

Is it possible to create one local users (6) and password in ASA to connect client vpn access from internet.


Thanks in advacne.


Regards,
Naidu.

2 Replies 2

manish arora
Level 6
Level 6

Hi,

tunnel-group general-attributes

     authentication-server-group LOCAL

try this , this will authenticate from local database if the Radius server fails.

Thanks

Manish

Hi Manish,

The same configuration what you told is there in my ASA...

But still i am not able to connect client vpn if Radius is unavailable.

Is there any other things need to configure to get locally authenticate?

tunnel-group ZAVPN general-attributes
address-pool (inside) ZAVPNpool
address-pool ZAVPNpool
authentication-server-group ASAAUTH(radius server name) LOCAL
default-group-policy ZAVPN

Regards,

Naidu.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco